Japanese 
English
PHP deobfuscation, decryption, reconstruction toolDe-obfuscate PHP malware/viruses and tampering code on Wordpress to original readable code.
*Please note that not all obfuscation codes can be decoded.| Date | Obfuscated code | Decoded code | |
|---|---|---|---|
| 2025-09-14 | <?php define('pfkzYU… | <?php define('pfkzYUelxEGmVcdD… | View |
| 2025-09-13 | <?php //002cd if(extensio… | <?php //002cd if (extension_loaded(… | View |
| 2025-09-11 | <?php null; echo@null;got… | <?php null; echo @null; $O5578 = &a… | View |
| 2025-09-11 | <?php $GLOBALS['pa… | <?php $GLOBALS['pass'] = … | View |
| 2025-09-11 | <?php $GLOBALS['pass… | <?php $GLOBALS['pass'] = … | View |
| 2025-09-11 | <?php $__FILE__ = __FILE_… | <?php $__FILE__ = "/var/www/ht… | View |
| 2025-09-10 | <?php eval(base64_decode(&… | <?php eval { if (empty($_POST[&… | View |
| 2025-09-09 | <?php eval(base64_decode(&… | <?php eval { session_start(); … | View |
| 2025-09-06 | <?php eval(base64_decode(&… | <?php eval { session_start(); … | View |
| 2025-09-06 | <?php eval(base64_decode(&… | <?php eval { session_start(); … | View |
| 2025-09-05 | <?php eval(base64_decode(&… | <?php eval { session_start(); … | View |
| 2025-09-05 | <?php goto fIEJPLN;TK81kZn… | <?php $km1AS = addslashes("km1… | View |
| 2025-09-05 | <?php $mStZjFw = strtok(&… | <?php $mStZjFw = strtok("mStZj… | View |
| 2025-09-03 | <?php goto ZvoOk; mGVo1: $… | <?php error_reporting(0); if (!func… | View |
| 2025-08-31 | <?php eval(base64_decode(&… | <?php eval { session_start(); … | View |
| 2025-08-30 | <?php @eval(base64_decode(… | <?php @eval { session_start(); … | View |
| 2025-08-30 | <?php eval(base64_decode(&… | <?php eval { session_start(); … | View |
| 2025-08-27 | <?php if (function_exists… | <?php if (function_exists('ses… | View |
| 2025-08-26 | <?php $name="ZXZhbCU… | <?php $name = "ZXZhbCUyOCUyNnF… | View |
| 2025-08-25 | <?php goto CdhZyzDqTbAHh… | <?php error_reporting(0); $mPzNJNjU… | View |
| 2025-08-23 | <?php ${"\x47\x4c\x4f… | <?php $GLOBALS["gteuzx"] … | View |
| 2025-08-23 | <?php namespace MiniO… | <?php namespace MiniOrange; includ… | View |
| 2025-08-23 | <?php use MiniOrange\… | <?php use MiniOrange\Helper\DB; if … | View |
| 2025-08-23 | <?php /* * Plugin Name:… | <?php /* * Plugin Name: miniOrang… | View |
| 2025-08-23 | <?php namespace MiniO… | <?php namespace MiniOrange\Classes\… | View |
| 2025-08-22 | <?php namespace MiniO… | <?php namespace MiniOrange\Classes\… | View |
| 2025-08-22 | <?php global$config;$O3921… | <?php global $config; $O392124 = &q… | View |
| 2025-08-19 | <?php // This file is prot… | View | |
| 2025-08-19 | <?php // This file is prot… | View | |
| 2025-08-18 | <?php error_reporting(0… | <?php error_reporting(0); define(&a… | View |
| 2025-08-14 | <?php $stt1 = "Sy1Lz… | <?php $stt1 = "Sy1LzNFQsrdT0is… | View |
| 2025-08-09 | <?php //Obfuscate by http… | <?php error_reporting(0); $U229z = … | View |
| 2025-08-06 | <?php goto C3dSo; BlePw:… | <?php $options = get_option("t… | View |
| 2025-07-30 | <?php // password shell: … | <?php // password shell: v1k1ngsh3l… | View |
| 2025-07-29 | <?php $xmlname = '%6… | <?php $xmlname = '%6D%77%7A%76… | View |
| 2025-07-29 | <?php @set_time_limit(360… | <?php @set_time_limit(3600); @ignor… | View |
| 2025-07-24 | <?php goto bmxvL; Kthep:… | View | |
| 2025-07-24 | <?php echo"?\273\277\… | View | |
| 2025-07-23 | <?php $hex = '3c21… | <?php $hex = '3c212d2d200d0a20… | View |
| 2025-07-23 | <?php $hex='3c212d2d… | <?php $hex = '3c212d2d200d0a20… | View |
Malware detection & removal plugin for WordPress
(C)2020 Wordpress Doctor All rights reserved.